Plentyoffish dating forums are a place to meet singles and get dating advice or share dating experiences etc. Hopefully you will all have fun meeting singles and try out this online dating thing... Remember that we are the largest free online dating service, so you will never have to pay a dime to meet your soulmate.

Except that there has been no mention ON the site. And the blog post plainly says, "This is not a statement from Plentyoffish, i’ll post something in the morning." So the site owner didn't think it was important to notify the users until this morning (which still hasn't happened, btw), but did find it important enough to go off on a crazed diatribe on his personal blog.

It should also be noted that, despite claiming to have plugged the security hole, POF is still sending out passwords in plain text. Which is just this side of just posting them on the Internet for everyone to see.

Sending out passwords in plain text has been my chief complaint to them for several months now. Why even send it out in every weekly update? If I forget my password, then perhaps something should be put in motion to reset it, but there is no reason for it to ever be sent in email.

Was Plenty Of Fish actually hacked, as the site's owner is claiming?orDid someone simply attempt to point out securtiy holes in the site, and were then attacked with irrational accusations by the site's owner?

Either way, it seems that any personal info of yours, that this site has, is likely not safe.

More than likely, the site owner is reacting the same way he has to every single user here that has tried to point out the flaws in this website. He deleted them, and then it 'didnt exist anymore' in his mind.Unfortunately, he can not delete the news stories everywhere else that are now pointing these things out, so he is flailing around trying to point the finger at anyone but the one responsible.

Maybe if you checked your most recent weekly emails from POF you would see that POF no longer send out passwords in the weekly emails.

Not true. My new auto-generated password was in the weekly email this morning. I just checked it & it IS there. You are mistaken. Last week, it was blank for one email. Then I received notice of a new auto-generated password. Then today the weekly email had that new email in it.

You can be sure that this was when they finally reacted to the breach. I don't know what the laws in Canada are, but I imagine the time is ticking for PoF to send an official notice to its users.

This site collects money from users as well, I imagine this delay in informing its users will run foul of many online banking notification requirements. No doubt, whoever it is that collects the money for the 'subscriptions' here will have serious problems with doing business with this site.

All around, its being handled about the worst possible way by the site owners.

Facebook is supposed to be porous as well and full of viruses. That's popular folklore. I try not to think too much about these things. My password is weak but easy to remember. I guess I'll be sorry. One of these days.

Yeh, I made a post about the incredibly amateurish security on PoF not even three weeks ago and my thread was purged. Not closed, but completely removed.

People have been complaining about the password issue here for years and nobody at PoF gives a shit.

The security hole that was used to access the database was a known vulnerability. It is more than likely that other parties have been exploiting that security hole for quite awhile. It is best to assume at this point that multiple parties have access to every piece of data on this site.

The CEO's blog post sounds like a child's whining. Try and pass the blame for their incompetence by blaming someone else for their shortcomings.

There are enough Plain Text PW threads in existence that can be easily found using the Thread Search tool. Where possible given time and resources, redundant threads are either closed or removed, regardless of subject matter - Read the posted rules and inform yourself before making unfounded assertions and assumptions regarding cover ups - If this were the case then this thread would have been flushed as well.

Its not just us he was trying to extort other paying sites. Its only a matter of time before they have to make public statements.

I call BS on this. Are you honestly saying, a person who gave you his full name is trying to extort you? Not only that, he gave his full name, along with this story to a reporter? All this time you are the one hiding and keeping your customers in the dark as to what happened. Most all of them are finding this out from OTHER sites who are printing this story.

Yeah, right. Im sure to take what you say as nothing but further deception.

The 'other' guy might very well be a moron and fool, but his personal failings have NOTHING to do with the fact that you have been ignoring, and ACTIVELY DELETING the posts of anyone who points these flaws out in the message board for YEARS.

The issue is your security failings, period. I don't care if a 12-yr old clown is the one who finally pointed it out, for you to finally take action that should have been addressed years ago.

I never understood this behaviour, despite the fact that people have been complaining about it for years. Just search this forum.

If you want to see some truly shocking displays of idiocy, look at some of the rationalizations people come up with for this site's policy of sending you plaintext password "reminders" every month or so.

Luckily, I use a unique password for PoF, knowing how exposed we are. Hopefully this jolts the site owners out of their complacency, but they still seem oblivious. Bizarre.

I just saw this story on the 6:00 ctv news. And the guys trying to blackmail pof founder to return the info.no links yet on the ctv site, probably because it's only 6:35, plus it's not a huge news maker.

does it really matter ? at the end of the day no one is stupid enough to use their real personal email for any dating site , and if you did then more fool you , and lets face it unless you use a CC there isnt much they can get as you dont put your name and address when signing up for an account , and people know not to use the same password as they do for other personal stuff , so in my eyes if it was hacked why all the worry its not as if they have any personal information on you , except an email address which isnt a personal one .